Security Advisory

CVE-2020-6200

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-10 20:18:50

Last updated 2024-08-04 08:55:21

Assigner sap

State PUBLISHED

Description

The SAP Commerce (SmartEdit Extension), versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting (XSS) that exploits the templating facilities of the angular framework.

← Browse all CVEs View on cve.org ↗